Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/VqAmg2QBUryIDLlmpTJV1LWD5BE.roa
File: VqAmg2QBUryIDLlmpTJV1LWD5BE.roa (raw, json)
Hash identifier: Ycbg9ng83ECEszKiP1lbOo6yjWWnEj1Du/IiAjyeWQ0=
Subject key identifier: 56:A0:26:83:64:01:52:BC:88:0C:B9:66:A5:32:55:D4:B5:83:E4:11
Certificate issuer: /CN=4cbfd3e72d4a0396f95347336b42678f68c26430
Certificate serial: 018F05B301DC960C7BEB745EA1730C36A813
Authority key identifier: 4C:BF:D3:E7:2D:4A:03:96:F9:53:47:33:6B:42:67:8F:68:C2:64:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TL_T5y1KA5b5U0cza0Jnj2jCZDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/VqAmg2QBUryIDLlmpTJV1LWD5BE.roa
Signing time: Mon 22 Apr 2024 12:06:08 +0000
ROA not before: Mon 22 Apr 2024 12:06:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199984
IP address blocks: 185.150.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Apr 2024 13:37:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:05:b3:01:dc:96:0c:7b:eb:74:5e:a1:73:0c:36:a8:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cbfd3e72d4a0396f95347336b42678f68c26430
Validity
Not Before: Apr 22 12:06:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56a02683640152bc880cb966a53255d4b583e411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8a:14:b2:1f:99:f7:a5:1e:d6:dc:cf:16:1a:
5a:b0:23:d4:b7:ff:8d:7c:1e:87:f7:e3:91:c5:6d:
48:bc:25:f2:dc:5c:08:9f:7f:8e:d9:f0:d9:33:93:
51:2a:41:74:a6:be:9d:ff:e9:cc:5d:04:1d:0c:d1:
8f:3c:ca:f8:49:95:e8:d6:21:ab:10:da:19:8d:ac:
c7:dd:16:4e:f3:15:2a:ae:44:3e:7f:65:7c:fe:4d:
96:93:b9:99:72:e4:b2:89:e9:c7:7c:74:c2:97:1c:
ea:1a:3b:46:f3:04:da:e4:3a:87:f1:85:37:3d:d7:
9f:e1:52:bb:1c:09:98:20:a4:e5:07:7c:58:95:93:
2a:25:30:52:fe:4a:06:c2:f4:b7:82:3f:01:31:91:
57:df:05:ce:0b:59:fc:52:79:b8:58:e6:db:e6:18:
ed:13:be:5a:a8:6c:e0:7f:83:b5:39:71:b7:ab:d8:
c8:f9:2c:d2:ae:a1:7a:ee:84:c4:7c:b0:e1:35:b5:
66:93:3d:9d:d3:a7:5f:92:0a:54:7a:94:b5:29:a0:
c9:3b:73:6f:35:ac:f8:ea:8f:90:f9:43:b5:ff:47:
27:d3:3c:42:29:63:42:e5:11:07:19:22:f8:4f:c4:
17:7a:48:fd:e9:ca:bc:85:6c:e0:56:bf:88:75:4c:
c9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A0:26:83:64:01:52:BC:88:0C:B9:66:A5:32:55:D4:B5:83:E4:11
X509v3 Authority Key Identifier:
keyid:4C:BF:D3:E7:2D:4A:03:96:F9:53:47:33:6B:42:67:8F:68:C2:64:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TL_T5y1KA5b5U0cza0Jnj2jCZDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/VqAmg2QBUryIDLlmpTJV1LWD5BE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/TL_T5y1KA5b5U0cza0Jnj2jCZDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.129.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:3c:87:b3:d2:84:49:08:48:81:7a:05:67:a2:30:82:67:17:
56:c3:51:80:b5:54:7b:ba:d1:e0:4c:59:32:48:c2:40:5d:5b:
11:98:b4:66:d1:c6:6d:b2:90:d2:d5:69:6d:e8:46:ec:43:bf:
2f:9f:ba:f5:67:61:7e:0a:f8:1f:89:51:29:e6:d1:4b:bf:43:
e4:66:e5:4b:8d:d6:e5:94:d6:db:7f:bd:0b:86:55:ce:0a:d1:
fd:d0:9c:eb:20:66:c4:c0:3c:84:db:b9:78:cb:01:ed:9a:5b:
a2:c4:0b:e8:da:78:20:c8:22:03:fb:7a:42:8d:12:16:b6:1c:
41:93:0a:4a:e0:b6:24:4d:00:0b:63:cd:1f:a0:26:cd:bb:fc:
5b:ee:e0:40:f8:fb:e4:93:d6:8d:9a:21:ff:f2:a6:c1:89:0e:
bd:06:a7:1c:76:78:ea:96:43:dc:d3:6b:0b:83:ce:22:01:83:
72:9b:99:37:87:75:73:4d:7e:92:92:d8:cd:e7:8b:aa:ff:7e:
a8:a0:3c:4c:a3:02:e7:66:c5:ae:7c:65:a2:23:18:96:dc:11:
1b:ab:53:1c:a2:4b:e8:3e:9f:c7:81:64:35:a8:1f:85:a8:4a:
f1:00:ed:1f:61:ab:7c:7c:1e:16:45:71:a3:0b:df:b4:0a:31:
ca:32:7b:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:03 2024 by rpki-client on console-fra.rpki-client.org